CVE-2026-15305: CWE-351 Insufficient Type Distinction in TYPO3 TYPO3 CMS
Users were able to upload files with arbitrary MIME types to forms using FileUpload or ImageUpload elements with allowedMimeTypes configured. The restriction was not enforced server-side because the…
Read the full article2d agoen
You might also wanna read
CVE-2026-47089: CWE-862 Missing Authorization in cyrusimap Cyrus IMAP
radar.offseq.com·3h ago
CVE-2026-47084: CWE-863 Incorrect Authorization in cyrusimap Cyrus IMAP
radar.offseq.com·3h ago
CVE-2026-47085: CWE-340 Generation of Predictable Numbers or Identifiers in cyrusimap Cyrus IMAP
radar.offseq.com·3h ago
CVE-2026-47083: CWE-204 Observable Response Discrepancy in cyrusimap Cyrus IMAP
radar.offseq.com·3h ago
CVE-2026-47082: CWE-863 Incorrect Authorization in cyrusimap Cyrus IMAP
radar.offseq.com·3h ago
CVE-2026-46338: CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in facelessuser pymdown-extensions
radar.offseq.com·3h ago
Comments
Sign in to join the conversation.
No comments yet. Be the first.